USN-1977-1: Linux kernel (EC2) vulnerabilities

Ubuntu Security Notice USN-1977-1

linux-ec2 vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 10.04 LTS

Summary

Several security issues were fixed in the kernel.

Software description

linux-ec2
- Linux kernel for EC2

Details

An information leak was discovered in the handling of ICMPv6 RouterAdvertisement (RA) messages in the Linux kernel's IPv6 network stack. Aremote attacker could exploit this flaw to cause a denial of service(excessive retries and address-generation outage), and consequently obtainsensitive information. (CVE-2013-0343)

Kees Cook discovered a flaw in the Human Interface Device (HID) subsystemof the Linux kerenl when CONFIG_HID_PANTHERLORD is enabled. A physicallyproximate attacker could cause a denial of service (heap out-of-boundswrite) via a specially crafted device. (CVE-2013-2892)

Update instructions

The problem can be corrected by updating your system to the following
package version:

After a standard system update you need to reboot your computer to makeall the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed. Ifyou use linux-restricted-modules, you have to update that package aswell to get modules which work with the new kernel version. Unless youmanually uninstalled the standard kernel metapackages (e.g. linux-generic,linux-server, linux-powerpc), a standard system upgrade will automaticallyperform this as well.